Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/l7gpHa6bLxNbNGbEySco-S3hVIg.roa
File: l7gpHa6bLxNbNGbEySco-S3hVIg.roa (raw, json)
Hash identifier: XGmxfD0cNQWMmDYJ0G3iEkIiecyovXpHoExMfQFLC/Y=
Subject key identifier: 97:B8:29:1D:AE:9B:2F:13:5B:34:66:C4:C9:27:28:F9:2D:E1:54:88
Certificate issuer: /CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Certificate serial: 018CC56DE310CD9BEDDEB142C1C7EA2FBE2B
Authority key identifier: 7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/l7gpHa6bLxNbNGbEySco-S3hVIg.roa
Signing time: Mon 01 Jan 2024 14:29:22 +0000
ROA not before: Mon 01 Jan 2024 14:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:e3:10:cd:9b:ed:de:b1:42:c1:c7:ea:2f:be:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Validity
Not Before: Jan 1 14:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97b8291dae9b2f135b3466c4c92728f92de15488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ff:3b:bb:bc:3a:11:37:3a:7b:0e:d3:5d:9a:
08:5c:3d:0d:32:1f:3e:c0:92:be:5b:cf:08:c8:36:
e3:38:3a:8a:b4:d7:87:bd:34:c8:c0:1a:5e:f6:9e:
ef:8b:41:88:f3:2a:c8:c3:9a:a9:9e:3a:8b:91:14:
a8:b4:bd:d1:2c:34:fb:45:8b:92:32:f9:3f:0f:83:
72:d3:cb:f2:69:b8:20:ed:0a:f5:1b:9f:b9:e4:c6:
6a:cf:a8:6f:f7:3e:62:89:49:ec:09:60:6c:01:5b:
2b:90:cb:05:9e:40:aa:35:e2:16:f0:20:33:f9:72:
cd:80:44:f6:d1:b0:12:cd:c4:56:f0:97:4e:ff:2c:
f6:9b:9b:c3:de:4c:7d:3e:84:25:a6:7b:df:fe:20:
e6:0f:c4:3a:19:9b:8a:23:49:30:64:b8:7c:d2:a3:
e9:74:79:0c:35:9d:4f:6a:ce:b3:2f:21:ec:46:60:
9c:6d:44:18:27:e5:1b:5c:ad:89:aa:67:14:5b:ae:
d9:b1:fc:a9:e1:61:48:35:f0:fe:f1:b3:bc:d8:3c:
7f:4b:6c:43:c1:4c:01:b8:d3:d9:59:36:68:cf:6c:
7b:c8:d0:bb:99:ce:df:10:38:bc:97:57:9a:04:66:
7d:1d:e6:17:4f:8c:ea:b4:53:7e:09:c0:ee:d3:e9:
a4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B8:29:1D:AE:9B:2F:13:5B:34:66:C4:C9:27:28:F9:2D:E1:54:88
X509v3 Authority Key Identifier:
keyid:7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/l7gpHa6bLxNbNGbEySco-S3hVIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/fPWJoxF0uISmT9CRrVwsulVFu9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.125.0/24
Signature Algorithm: sha256WithRSAEncryption
71:9e:9e:28:a3:e7:37:45:db:eb:75:3f:5c:d9:6f:c7:d3:f5:
9b:83:c5:59:42:79:46:6f:19:03:01:c6:d0:25:1c:15:e1:a7:
c9:23:2b:f8:5d:66:34:b3:d3:b7:b6:14:e2:dd:04:85:1b:77:
20:0a:c5:08:fd:3b:ec:fb:de:18:7a:c6:eb:a9:13:ab:9c:ac:
37:36:2d:70:0e:d4:61:df:d0:ec:4f:04:2d:a9:e7:4d:f2:fa:
c8:28:b6:5d:cb:d7:d8:a7:9c:e0:56:46:d4:7d:81:12:22:74:
43:8c:3e:65:de:74:6b:a3:95:87:79:da:b6:77:21:1f:e7:ad:
7e:d4:e5:4e:6b:12:5d:01:b0:42:4e:73:3c:98:bf:94:7b:b2:
92:76:a6:c6:ec:4c:14:ce:2e:98:38:8a:8a:4f:a5:f6:a4:56:
59:c0:c6:44:d4:9b:5e:5d:9f:93:f7:9f:df:81:db:4c:ed:1b:
c8:0f:83:a0:33:d1:71:28:14:76:e1:7f:fc:21:01:ad:74:5a:
8a:00:95:d1:95:23:81:2f:77:a4:a6:dc:d2:ad:c4:fc:e5:4f:
b1:8d:a6:78:81:c8:eb:18:88:1b:b8:f8:57:70:f8:e0:0c:a9:
84:90:24:d2:7e:fc:c3:25:b5:c5:c9:11:38:d3:84:9c:ba:63:
11:34:1e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:28 2024 by rpki-client on console-fra.rpki-client.org